Thanks@ Infra!!!
@Avast: You gotta be kidding me?!?
I mean this setting is just for allowing RDS connections!!!!!
One point that I must admit: I was so naive to assume that I could rely on the menu description to some extent. Of course, I should have researched more thoroughly.
On the other hand, software developers and product managers should design their applications to be as intuitive and logical as possible and structure the menu accordingly. Only in this way can it be ensured that an application can be used easily and user-friendly.
My suggestion at this point, which I will of course present to the Product Board: move this setting directly under "Enable RDP Protection" so that it is unequivocally clear that this setting can only be used for that purpose.
In addition, I would like to propose an exception option for the entire component in the interest of the customers. As it stands, I am unfortunately forced to either completely disable the component in the policy, create a separate policy, or enable policy override for individual clients. None of these three alternatives are truly viable solutions but rather workarounds that render this protection component absurd.